Submeter #809888: D-Link DCS-935L ≤1.10.01 Buffer Overflowinformação

TítuloD-Link DCS-935L ≤1.10.01 Buffer Overflow
DescriçãoThis vulnerability exists in the HNAP service handler of the D-Link DCS-935L firmware. An attacker can exploit a flaw in `AESDecrypt` and its underlying decoding function by sending a specially crafted malicious XML request, triggering a stack-based buffer overflow and subsequently achieving Remote Code Execution (RCE).
Fonte⚠️ https://github.com/0xcc12138/DCS-935L-HNAP-Service-CVE
Utilizador
 0xcc12138 (UID 97530)
Submissão22/04/2026 10h22 (há 2 meses)
Moderação10/05/2026 17h16 (18 days later)
EstadoAceite
Entrada VulDB362557 [D-Link DCS-935L até 1.10.01 HNAP Service hnap_service SetDeviceSettings AdminPassword Excesso de tampão]
Pontos19

VoltarVisão GeralPróximo

Do you need the next level of professionalism?

Upgrade your account now!